We performed a comparison between Check Point IPS and Cisco Sourcefire SNORT based on real PeerSpot user reviews.
Find out in this report how the two Intrusion Detection and Prevention Software (IDPS) solutions compare in terms of features, pricing, service and support, easy of deployment, and ROI."IPS easily allows follow-up flags on recently updated patterns. If, in rare cases, a false positive does occur, it is quickly detected and an exception can be easily created."
"We are able to define our own rules for detection."
"Its event analysis and centralization features are very important for any organization."
"There's an automatic update after every 2 hours which makes sure that the database is up to date and providing zero-day vulnerability protection."
"User-friendly and easy to implement."
"IPS logs enable complete visibility and reporting through the smart console."
"The most valuable features of the solution are that the product's stability has been very good. The"
"Real-time protection has blocked most threats that could affect system operations."
"In general, the features are all great. However, if I need to take hardware for ASA, because they need to upgrade to Firepower, we want to create rules. For that, most of the time we go to the command line. Right now Firepower is working really hard on the grid. You can apply all those rules to the grid. Even if you want to monitor the logs, for example, the activity will tell you which particular user has been blocked because of that rule. Firepower's monitoring interface is very good, because you can see each and every piece. ASA also had it, but there you needed to type the command and be under the server to see all that stuff. In Firepower you have the possibility to go directly to the firewall. The way the monitoring is displayed is also very nice. The feature I appreciate most in Firepower is actually the grid. The grid has worked very well."
"Solid intrusion detection and prevention that scales easily in very large environments."
"I like most of Cisco's features, like malware detection and URL filtering."
"The URL filtering is very good and you can create a group for customized URLs."
"The whole solution is very good, and stable."
"The most valuable features of Cisco Sourcefire SNORT are the dashboard for monitoring events."
"The product is inexpensive compared to leading brands such as Palo Alto or Fortinet."
"The most valuable feature is the ability to automatically learn the traffic in our environment, and change the merit recommendations based on that."
"I would like the product to provide us with intelligence to understand what we really have in our environment."
"There is an issue with precision."
"The solution needs enhanced reporting. The reporting on Cisco Stealthwatch and Darktrace is much bigger. The visibility that they grant for the filtering capabilities over large infrastructures are far superior."
"Having additional reports available would be helpful."
"We want the solution to continue to move towards cloud-based and portability focused for telecommuting users."
"I observed on our management that sometimes IPS does not connect to the threat cloud, we have to check and improve it. Otherwise, all of the features are good."
"Occasionally there are glitches and errors like false positives, which would be a nice area of this solution to improve upon."
"It requires a lot of people to maintain the solution."
"The cloud can be improved."
"There are problems setting up VPNs for some regions."
"I would like to have analytics included in the suite."
"We are unhappy with technical support for this solution, and it is not as professional as what we typically expect from Cisco."
"With the next release, I would like to see some PBR, so that you can do the configuration with the features."
"The initial setup is a little difficult compared to other products in the market. It depends on the environment. If we are doing any migration, it might take months in a brown-field environment."
"The pricing needs to be improved. We have lots of low-budget clients around us. Budget constraints are always a deterrent in our market."
"I don't think this solution is a time-based control system, because one cannot filter traffic based on time."
Check Point IPS is ranked 3rd in Intrusion Detection and Prevention Software (IDPS) with 46 reviews while Cisco Sourcefire SNORT is ranked 12th in Intrusion Detection and Prevention Software (IDPS) with 18 reviews. Check Point IPS is rated 8.6, while Cisco Sourcefire SNORT is rated 7.6. The top reviewer of Check Point IPS writes "Great for detection and access with the capabilities of defining specific rules". On the other hand, the top reviewer of Cisco Sourcefire SNORT writes "An IPS solution for security and protection but lacks stability". Check Point IPS is most compared with Darktrace, Palo Alto Networks URL Filtering with PAN-DB, Palo Alto Networks Advanced Threat Prevention, Trend Micro TippingPoint Threat Protection System and Vectra AI, whereas Cisco Sourcefire SNORT is most compared with Fortinet FortiGate IPS, Cisco NGIPS, Palo Alto Networks Advanced Threat Prevention, Darktrace and Vectra AI. See our Check Point IPS vs. Cisco Sourcefire SNORT report.
See our list of best Intrusion Detection and Prevention Software (IDPS) vendors.
We monitor all Intrusion Detection and Prevention Software (IDPS) reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.